Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ハニーポットのログ分析

292a5fc0722cc2ddabf2b088a8f12793?s=47 Kazuaki Morihisa
April 11, 2018
Technology
0
420

 ハニーポットのログ分析

2018年4月11日 総関西サイバーセキュリティLT大会(第8回)発表資料 @morihi_soc #sec_kansai #sosaisec

292a5fc0722cc2ddabf2b088a8f12793?s=128

Kazuaki Morihisa

April 11, 2018
Tweet

More Decks by Kazuaki Morihisa

See All by Kazuaki Morihisa
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
1
650
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
1
1.3k
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
2
1.4k
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
5
2.6k
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
0
800
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
0
980
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
0
1.3k
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
2
1k
292a5fc0722cc2ddabf2b088a8f12793?s=48 morihi_soc
1
960

Other Decks in Technology

See All in Technology
06986333d704c400f7a2053994058e6e?s=48 cmtamai
0
420
4cafe6a1c6287d64d7252279eeeffa94?s=48 moongift
0
150
44a210d1299a727e9d601a47dfedeabf?s=48 mot_techtalk
0
120
4f43f9f4dc4cc2897841877e8f7b032f?s=48 cielan
1
290
7cd783377515bdf8207062840b7b2f4e?s=48 soracom
PRO
0
440
Cb17938137021ead2656d0fe58b7c7b1?s=48 shotakitazawa
2
370
Dc03bf56cb3157b6036f9818593d7e40?s=48 rung
0
1.1k
18b12f8f7910445b2637f0f21f59d467?s=48 hokaccha
5
1.7k
C0ed34c2bad05c45fbf4ed4d3e73d70b?s=48 hi120ki
0
360
A19876f5694283f26a061746ba82c3b0?s=48 germsvel
1
170
49f49940f0831a426745c028684bcdad?s=48 hatena
0
3.3k
A645e7c3a6635ead8fa323c583769591?s=48 hololab
0
630

Featured

See All Featured
170b760e0147792d0140e59ec78e9893?s=48 eitanlees
120
11k
Eb8975af8e49e19e3dd6b6b84a542e26?s=48 qrush
288
19k
462dad0dd24c568a32dcdb0ae895ae1b?s=48 rasmusluckow
318
19k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
167
19k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
372
43k
Ecdea9b9714877b86cee08458f085481?s=48 trallard
25
1.2k
5f83ef806155b403c3393160ce51f955?s=48 jlugia
218
16k
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
31
1.8k
5f50f94346fbcb23706f0707169317a4?s=48 aarron
261
36k
C157b16234f1e75e8eac3698c1d4414a?s=48 ddemaree
273
32k
44b54d2ffcb7857004071cc6795dde11?s=48 cassininazir
350
20k
C51b39fa3c79ccb99dcb8a076bc98287?s=48 brianwarren
88
5.3k

Transcript

  1. 2018೥4݄11೔ ૯ؔ੢αΠόʔηΩϡϦςΟ̡̩େձʢୈ8ճʣൃදࢿྉ ϋχʔϙοτͷ ϩά෼ੳ @morihi_soc

  2. XIPBNJ w ৿ٱ࿨ত !NPSJIJ@TPD  w ຊۀ͸ηΩϡϦςΟΤϯδχΞɾΞφϦετ w झຯͰϋχʔϙοτͷӡ༻Λ͢Δϋχʔϙολʔ w

    ϒϩάˠIUUQXXXNPSJIJTPDOFU w ϋχʔϙολʔٕज़ަྲྀձओ࠵ऀ w άϧʔϓˠIUUQTIBOJQPUFDIDPOOQBTTDPN   ˡϒϩάͷʮϋχʔϙοτ؍࡯ه࿥ʯ͕ ຊʹͳΓ·ͨ͠ ೥݄೔ൃച ిࢠॻ੶൛ແྉࢼಡ൛͋Γ·͢  ʮαΠόʔ߈ܸͷ଍੻Λ෼ੳ͢Δ ϋχʔϙοτ؍࡯ه࿥ʯ ஶऀɿ৿ٱ࿨ত ग़൛ɿल࿨γεςϜ ࠓ·Ͱʹ͓ੈ࿩ʹͳͬͨΠϕϯτ ɾ*5,FZT ݱ4FD$BQ  ɾωοτϫʔΫύέοτΛಡΉձ Ծ  ɾ/*4$αΠόʔϋϩ΢Οϯ ɾ*OUFSOFU8FFL ɾ)BSEFOJOH 7BMVF$IBJO༏উ  ɾTTNKQ ɾ"*4FD ɾULULηΩϡϦςΟษڧձ

  3. ϋχʔϙολʔٕज़ަྲྀձʹͯ 2ϋχʔϙοτͷϩά͸
 ͲΕΛݟͨΒ͍͍Ͱ͔͢ 3 "͋ͳͨͷڵຯΛҾ͘
 lԿ͔z͕͋Ε͹ؾͷࡁΉ
 ·Ͱ෼ੳ͠·͠ΐ͏ɻ

  4. ॳ৺Λࢥ͍ग़͢ wϋχʔϙοτΛ২͑ͨͱ͖͸ɺ͖ͬ ͱ஌Γ͍ͨ͜ͱ΍ɺ໨ඪʹ͍ͨ͠ ͜ͱ͕͋ͬͨ͸ͣɻ wͦͷϞνϕʔγϣϯʹԊͬͯɺ෼ ੳ͢ΔϩάΛऔࣺબ୒͠·͠ΐ͏ wझຯͷϋχʔϙολʔͳΒɺݟͳ ͍ϩά͸ͲΜͲΜࣺͯͯ0,ɻ 4

  5. ώϯτ w )551ͷϩάͰ͋Ε͹ɺΞΫηεઌͷ63*Ͱ ·ͱΊͯूܭ͢Δɻݟͨ͜ͱͷͳ͍63*͕͋ Ε͹ௐࠪ͢Δɻ w 44)αʔόͷϋχʔϙοτͰ͋Ε͹ɺਓ͕ؒ ૢ࡞͍ͯ͠ΔΑ͏ͳϩάΛௐࠪ͢Δɻ w ϞχλʹϋχʔϙοτͷϩάΛৗʹྲྀ͠ଓ͚ͯ

    ͓͍ͯɺޫͬͨΒݟΔɻ໨HSFQྗΛ஁͑ΒΕ ΔΦϚέ͖ͭɻ 5

  6. )BQQZ)POFZQPU w ͝ਗ਼ௌ͋Γ͕ͱ͏͍͟͝ ·ͨ͠ɻ 6 ←λψΩϞ(৯஬২෺) 2017೥10݄27೔ ເͷౡ ೤ଳ২෺ؗʹͯࡱӨ